DEPRECATED-patrol-rules-aws icon indicating copy to clipboard operation
DEPRECATED-patrol-rules-aws copied to clipboard
verified publisher icon mapbox

Alarm when someone creates EC2 instance from console

Open piligab opened this issue 9 years ago • 2 comments

It is very rare that someone should ever need to create an EC2 instance from the console. When an EC2 instance is created from the console, scripts like buildpack and seatbelts are not installed on the EC2, making the EC2 less secure if any of its ports are open to the internet.

Note:

It should be noted that allowed users be autoscaling and cloudformation.

This rule trigger an alarm if an users different the autoscaling or cloudformation creates an EC2 from the console.

cc. @ianshward @Rub21

piligab avatar Nov 10 '16 21:11 piligab

@ianshward I updated according your comments and observations. Thanks you.

piligab avatar Nov 11 '16 18:11 piligab

I will fix some issues here and do the test!

Rub21 avatar Nov 11 '16 18:11 Rub21